Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/6ab0722f-64d8-4ca9-9267-4e5154434101/0/3138352e39332e33322e302f32342d3234203d3e203536353430.roa
File: 3138352e39332e33322e302f32342d3234203d3e203536353430.roa (raw, json)
Hash identifier: NEd63Xu6XuWeI4IeCzi4e6yacTmUfY8nQBGMNksXwaM=
Subject key identifier: EB:C4:34:DE:A4:46:1E:B3:A8:CD:9B:A3:5C:5A:ED:16:AB:EA:61:FA
Certificate issuer: /CN=dc943cc2a7cdc378a37702573bb4f821170b530d
Certificate serial: 0846242E47155379E0CC10EAD5B2964809678861
Authority key identifier: DC:94:3C:C2:A7:CD:C3:78:A3:77:02:57:3B:B4:F8:21:17:0B:53:0D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3JQ8wqfNw3ijdwJXO7T4IRcLUw0.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/6ab0722f-64d8-4ca9-9267-4e5154434101/0/3138352e39332e33322e302f32342d3234203d3e203536353430.roa
Signing time: Tue 27 Feb 2024 00:32:11 +0000
ROA not before: Tue 27 Feb 2024 00:27:11 +0000
ROA not after: Tue 25 Feb 2025 00:32:11 +0000
asID: 56540
IP address blocks: 185.93.32.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/6ab0722f-64d8-4ca9-9267-4e5154434101/0/DC943CC2A7CDC378A37702573BB4F821170B530D.crl
rsync://rsync.paas.rpki.ripe.net/repository/6ab0722f-64d8-4ca9-9267-4e5154434101/0/DC943CC2A7CDC378A37702573BB4F821170B530D.mft
rsync://rpki.ripe.net/repository/DEFAULT/3JQ8wqfNw3ijdwJXO7T4IRcLUw0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 26 Nov 2024 03:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
08:46:24:2e:47:15:53:79:e0:cc:10:ea:d5:b2:96:48:09:67:88:61
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dc943cc2a7cdc378a37702573bb4f821170b530d
Validity
Not Before: Feb 27 00:27:11 2024 GMT
Not After : Feb 25 00:32:11 2025 GMT
Subject: CN=EBC434DEA4461EB3A8CD9BA35C5AED16ABEA61FA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:10:72:57:e2:60:c2:38:19:51:3b:b0:b9:d4:
a8:57:3d:56:e2:6c:45:bd:19:5e:94:2d:56:41:12:
ef:2f:86:25:6d:4f:f9:6a:af:f0:9c:d0:db:b1:78:
11:78:33:9c:28:1b:d7:89:9c:4e:97:9c:10:a4:8d:
dd:14:81:b3:a4:0c:be:ae:cf:70:0c:b6:22:ee:9f:
1f:d1:22:83:34:b3:bb:46:f6:03:9f:72:96:80:5c:
1c:e5:ba:cd:6c:c0:7c:9f:c7:73:9f:01:80:72:81:
75:89:64:2d:75:2a:33:21:fd:6a:0a:aa:ac:42:7d:
4a:8a:cd:62:a9:9f:2f:cc:7d:67:7d:00:a6:4a:fe:
05:d1:00:44:fb:2e:16:59:ff:bf:81:78:55:6d:7f:
cd:1c:0e:d7:e1:59:51:2f:0f:2b:1d:0b:0c:59:e8:
cd:5b:6b:ee:a2:d7:06:11:44:20:bc:78:e1:34:42:
f8:13:d3:b4:18:9f:a6:d9:9c:12:50:f6:d2:e9:89:
e9:d0:e4:6c:88:fa:2f:2a:3f:1b:89:37:1b:8b:41:
79:b4:54:f7:7d:10:95:bb:a7:8e:e5:c2:fd:ca:0c:
68:80:2e:b0:2c:29:94:07:f2:b5:00:7b:d3:db:70:
ab:f0:f9:89:21:fd:4d:1e:d8:3f:b7:26:44:0e:1d:
f1:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:C4:34:DE:A4:46:1E:B3:A8:CD:9B:A3:5C:5A:ED:16:AB:EA:61:FA
X509v3 Authority Key Identifier:
keyid:DC:94:3C:C2:A7:CD:C3:78:A3:77:02:57:3B:B4:F8:21:17:0B:53:0D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/6ab0722f-64d8-4ca9-9267-4e5154434101/0/DC943CC2A7CDC378A37702573BB4F821170B530D.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3JQ8wqfNw3ijdwJXO7T4IRcLUw0.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/6ab0722f-64d8-4ca9-9267-4e5154434101/0/3138352e39332e33322e302f32342d3234203d3e203536353430.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.93.32.0/24
Signature Algorithm: sha256WithRSAEncryption
29:5a:c2:71:d4:6a:7a:25:fd:e0:9b:19:fe:56:f7:d7:88:15:
13:11:b0:c9:04:9f:f9:4d:c7:cd:36:08:6c:aa:00:70:2c:fa:
4c:a1:06:1b:75:26:66:18:40:1b:ef:3d:b6:66:09:5d:00:d3:
73:8c:9f:fb:22:74:df:91:60:94:88:bd:d3:5e:87:76:7e:1e:
d7:e1:1b:a6:a8:98:61:64:f1:71:72:d3:16:df:8d:13:1f:80:
7d:f9:7c:ea:5e:0b:25:73:2a:49:f4:4d:c3:ee:29:59:87:c0:
c8:cf:95:88:5a:fa:38:77:04:8f:98:8f:d4:18:95:21:84:74:
e2:71:32:96:9a:80:53:71:25:f3:08:b5:49:8a:a5:74:d8:c5:
8b:44:3b:00:a9:ee:67:1b:86:22:39:81:28:db:a6:8a:4f:28:
3b:d3:7a:94:9c:7c:60:e6:83:f1:6f:f5:15:55:25:05:c0:8e:
eb:6d:a2:49:20:cc:92:fa:9b:e3:9c:4f:ea:18:55:18:dd:af:
55:e8:72:74:ca:11:72:e2:70:72:cc:07:92:23:2f:00:9a:f7:
c6:13:c5:a5:a5:f3:21:45:d9:df:8c:b9:a7:66:53:95:46:8e:
6b:6f:b0:50:32:d6:13:69:af:48:bb:ff:f1:13:c9:63:67:cc:
a8:d3:56:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 25 07:54:59 2024 by rpki-client on console-ams.rpki-client.org